Mobile phone controls preprocessor

ABSTRACT

A method of policy management and control on a mobile phone. The method comprises receiving a user interface change request by a launcher application executing on the mobile phone, requesting permissions from an interface control application programming interface (API) by the launcher application, receiving a response from the interface control application programming interface by the launcher application, where the response indicates if the user interface change is permitted, and enforcing the received permission by the launcher application, where enforcing the received permission comprises executing the user interface change request when the user interface change is permitted, and where enforcing the received permissions comprises not executing the user interface change request and presenting a message to a user of the mobile phone when the user interface change is restricted.

CROSS-REFERENCE TO RELATED APPLICATIONS

None

STATEMENT REGARDING FEDERALLY SPONSORED RESEARCH OR DEVELOPMENT

Not applicable.

REFERENCE TO A MICROFICHE APPENDIX

Not applicable.

BACKGROUND

Policy management is an approach for delivering wireless services tomobile communication devices, with the focus on open interfaces acrossthe service delivery chain. Digital rights management (DRM) is an accesscontrol technology used by hardware manufacturers, publishers, copyrightholders and individuals with the intent to limit the use of digitalcontent. Digital rights management is any technology that inhibits usesof digital content that are not desired or intended by the contentprovider. Common digital rights management techniques includeencryption, scrambling, and the embedding of a tag.

SUMMARY

In an embodiment, a method of policy management and control on a mobilephone is disclosed. The method comprises receiving a user interfacechange request by a launcher application executing on the mobile phone,requesting permissions from an interface control application programminginterface (API) by the launcher application, receiving a response fromthe interface control application programming interface by the launcherapplication, where the response indicates if the user interface changeis permitted, and enforcing the received permission by the launcherapplication, where enforcing the received permission comprises executingthe user interface change request when the user interface change ispermitted, and where enforcing the received permissions comprises notexecuting the user interface change request and presenting a message toa user of the mobile phone when the user interface change is restricted.

In an embodiment, a method of policy management and control on a mobilephone is disclosed. The method comprises receiving a settings changerequest by a settings application executing on the mobile phone,requesting permissions from an interface control application programminginterface (API) by the settings application, receiving a response fromthe interface control application programming interface by the settingsapplication, where the response indicates if the settings change ispermitted, and enforcing the received permission by the settingsapplication, where enforcing the received permission comprises executingthe settings change request when the settings change is permitted, andwhere enforcing the received permissions comprises not executing thesettings change request and presenting a message to a user of the mobilephone when the settings change is restricted.

In an embodiment, a method of policy management and control on a mobilephone is disclosed. The method comprises receiving an interface andapplications pack (IAP) change request by an interface and applicationspack installer application executing on the mobile phone, requestingpermissions from an interface control application programming interface(API) by the interface and applications pack installer application,receiving a response from the interface control application programminginterface by the interface and applications pack installer application,where the response indicates if the interface and applications packchange is permitted, and enforcing the received permission by theinterface and applications pack installer application, where enforcingthe received permission comprises executing the interface andapplications pack change request when the interface and applicationspack change is permitted, and where enforcing the received permissionscomprises not executing the interface and applications pack changerequest and presenting a message to a user of the mobile phone when theinterface and applications pack change is restricted.

These and other features will be more clearly understood from thefollowing detailed description taken in conjunction with theaccompanying drawings and claims.

BRIEF DESCRIPTION OF THE DRAWINGS

For a more complete understanding of the present disclosure, referenceis now made to the following brief description, taken in connection withthe accompanying drawings and detailed description, wherein likereference numerals represent like parts.

FIG. 1 is a block diagram of a system according to an embodiment of thedisclosure.

FIG. 2 is a flow chart of a method according to an embodiment of thedisclosure.

FIG. 3 is a flow chart of a method according to an embodiment of thedisclosure.

FIG. 4 is a flow chart of a method according to an embodiment of thedisclosure.

FIG. 5 is an illustration of a mobile device according to an embodimentof the disclosure.

FIG. 6 is a block diagram of a mobile device according to an embodimentof the disclosure.

FIG. 7A is a block diagram of a software architecture for a mobiledevice according to an embodiment of the disclosure.

FIG. 7B is a block diagram of a software architecture for a mobiledevice according to an embodiment of the disclosure.

FIG. 8 illustrates an exemplary computer system suitable forimplementing the several embodiments of the disclosure.

DETAILED DESCRIPTION

It should be understood at the outset that although illustrativeimplementations of one or more embodiments are illustrated below, thedisclosed systems and methods may be implemented using any number oftechniques, whether currently known or not yet in existence. Thedisclosure should in no way be limited to the illustrativeimplementations, drawings, and techniques illustrated below, but may bemodified within the scope of the appended claims along with their fullscope of equivalents.

Modern mobile smartphones provide users with a myriad of options forcustomizing their device, from altering the look and feel of the userinterface to adding functionality with new applications. While thisincreased power and flexibility can increase satisfaction for the user,it can pose problems in an enterprise environment where a company maywant to limit what their employees do on company purchased equipment.The present disclosure presents methods for restricting changes on amobile phone and for remote administration of the mobile phone in anenterprise environment.

A system and method of policy management and control on a mobile phoneis disclosed, comprising an interface control application programminginterface which provides access to permissions for user interfaceconfiguration, device settings, and interface and applications packconfiguration. This is accomplished through implementation of modifiedapplications which interact with the interface control applicationprogramming interface prior to performing actions requested by the user.

A launcher application presents the home screen or main view of themobile phone and is responsible for starting other applications andhosting widgets. A widget is a small, dynamic application that providesa graphical element which may display live data, such as the currenttime or temperature. A modified launcher application is installed on themobile phone which interacts with the interface control applicationprogramming interface to check permissions each time a user attempts toperform an action. If the user is not allowed by the defined permissionsto perform the action, a message is presented to the user explaining theblocked permissions. Permissions that may be enforced by the launcherapplication may include adding, deleting, or moving a user interfaceelement, changing wallpaper, invoking a search, and opening the settingsmenu.

Similarly, the settings application may be modified to interact with theinterface control application programming interface to check permissionswhen a user attempts to configure their device via the settings menu.Permissions may be checked for settings such as toggling radios on andoff, adding accounts such as email or social networks, updatingfirmware, and deleting applications. When a user attempts to modifythese types of settings by clicking on an item such as a list, checkbox,or dropdown, the settings application checks permissions with theinterface control application programming interface. If the user is notallowed by the defined permissions to perform the action, the settingsapplication enforces the permissions by presenting a message to the userexplaining the blocked permissions.

In addition to limiting user interface changes through the launcherapplication and configuration changes through the settings application,the interface control application programming interface may also providesupport to control changes to interface and applications packs. Aninterface and applications pack comprises at least one of a media file,an application, a web widget, and a network service and may be viewed asan aggregated set of targeted content used to customize thecommunication experience of using an electronic device. The interfaceand applications pack may be produced by an enterprise such as a retailoutlet or a media business to promote its business interests to wirelesscommunication service subscribers.

Users may install multiple interface and applications packs on theirphone and switch between them to change the look of the phone screensand provide accessibility to applications in the interface andapplications pack. The interface and applications pack installerapplication may also be designed to interact with the interface controlapplication programming interface. When a user attempts to change theuser interface of the interface and applications pack or add or deletean application in the interface and applications pack, the interface andapplications pack installer application checks permissions with theinterface control application programming interface. If the user is notallowed by the defined permissions to perform the attempted change, theinterface and applications pack installer application enforces thepermissions and presents a message to the user explaining the blockedpermissions.

The interface control application programming interface also supportsremote configuration and control of the mobile phone through anadministration application on the phone designed to interact with theinterface control application programming interface. The administrationapplication allows remote access to the mobile phone through anadministration server which can query the phone for its current settingsand installed applications. Once the administration server has asnapshot of the phone configuration, a device administrator may makechanges to the permissions and applications for the device on theadministration server and push the updated permissions and applicationsto the mobile phone without user interaction. This remote configurationcapability may allow the device administrator to add and removeapplications on the mobile phone to ensure the enterprise user has thefunctionality needed while limiting access to unnecessary or personalcontent.

In an embodiment, the permissions may be contextually defined. Forexample, depending on the context or environment, the permissions may bedifferent. During working hours, when the mobile phone may be used in anenterprise environment, a first set of permissions defined and/orapproved by the enterprise may be applicable and referenced by thesettings application during working hours, while when the mobile phoneis used in a private capacity by the user, a second set of permissionsdefined by the subscriber may be applicable and referenced by thesettings application. The context may be distinguished based on time ofday, day of week, geographical location, and/or relative location. Thecontext may be distinguished by whether the mobile phone is used in acompany vehicle or whether the mobile phone is embedded in a companyvehicle or removed from the company vehicle. The context may bedistinguished based on whether the location of the mobile phone is intown or out of town. The context may be distinguished based on otherstates.

The context based permissions described above may relate to a selectednumber of the configurable mobile phone parameters, applications, orsettings. For example, the context based permissions may be restrictedto settings for camera operability, GPS operability, web browserlimitations. In an embodiment, the settings application may evaluate thestate of settings during a context transition and change settings basedon the context based permissions of the impending context. For example,shortly before working hours begin, the settings application may imposeweb browser site restrictions, turn on the GPS functionality, anddisable camera operability, notwithstanding what these settings may havebeen when the out-of-office context was active. In an embodiment,context specific settings may be stored separately in the mobile phoneto support automatic restoral of context specific settings whentransitioning to the subject context. Some settings may not be subjectto change based on context. For example, an enterprise permission orrule that forbids installing applications and/or games from unapprovedthird party vendors may remain in force even when the context shifts tothe out-of-office context, to avoid a disabling virus being installed onthe mobile phone.

Turning now to FIG. 1, a system 10 for policy management and control ona mobile phone is described. In an embodiment, the system 10 comprises amobile phone 12, a base transceiver station 14, a network 16, and anadministration server 40. The mobile phone 12 comprises a radiotransceiver 20 and a memory 22. The memory 22 of the mobile phone 12comprises an applications layer 24 and an application framework layer 34comprising an interface control application programming interface 36.The applications layer 24 comprises a launcher application 26, asettings application 28, an interface and applications pack installerapplication 30, and an administration application 32.

In an embodiment, the launcher application 26 interacts with theinterface control application programming interface 36 to requestpermissions when a user attempts to make a change to the user interfaceof the mobile phone 12. Permissions which may be enforced by thelauncher application 26 may include blocking the ability to add awidget/shortcut/folder, to delete a widget/shortcut/folder, to move awidget/shortcut/folder, to drag a widget/shortcut/folder to anotherpanel, to resize a widget, to change wallpaper, to invoke search from amenu or physical button, to open the settings menu, and to long-press anicon in the applications tray and have it added to a panel.

In an embodiment, the settings application 28 interacts with theinterface control application programming interface 36 to requestpermissions when a user attempts to make a change to the configurationsettings of the mobile phone 12. The settings application 28 may includein excess of 100 values a user can configure and may check and enforcepermissions on one or more of the values. Permissions which may beenforced by the settings application 28 may include blocking the abilityto toggle the global positioning system (GPS) on/off, to toggle theWi-Fi on/off, to configure the Wi-Fi access point, to modify the Wi-Fiaccess point, to delete the Wi-Fi access point, to configure virtualprivate network (VPN) connections, to modify virtual private networkconnections, to add virtual private network connections, to add accountssuch as email or social networks, to update firmware, to perform factoryresets, to wipe secure digital (SD) card data, to delete applications,and to stop applications and clear their internal data.

In an embodiment, the interface and applications pack installerapplication 30 interacts with the interface control applicationprogramming interface 36 to request permissions when a user attempts tomake changes to the interface and applications pack user interface orcontent. Permissions may be defined by the designer of the interface andapplications pack. Permissions which may be enforced by the settingsapplication 28 may include blocking the ability to modify the userinterface of an interface and applications pack, to add applications toan interface and applications pack, to delete applications from aninterface and applications pack, and to change the wallpaper of theinterface and applications pack.

The mobile phone 12, while shown as a mobile phone, may be a personaldigital assistant (PDA), a media player, or other network enabledelectronic device. The base transceiver station 14 provides acommunication link to the radio transceiver 20 and couples the mobilephone 12 to the network 16. In an embodiment, the base transceiverstation 14 provides a wireless communication link to the radiotransceiver 20 according to one or more of a code division multipleaccess (CDMA) wireless protocol, a global system for mobilecommunications (GSM) wireless protocol, a long term evolution (LTE)wireless protocol, a worldwide interoperability for microwave access(WiMAX) wireless protocol, or another wireless protocol. While a singlebase transceiver station 14 is illustrated in FIG. 1, it is understoodthat the system 10 may comprise any number of base transceiver stations14. The network 16 may be a public communication network, a privatecommunication network, or a combination thereof. The network 16 may be acombination of a wireless network coupled to a wired network, where thewireless network is provided by a wireless service provider and accessedvia a plurality of base transceiver stations 14.

The administration server 40 is coupled to the network 16 and interfaceswith the mobile phone 12 via the network 16. The administration server40 facilitates remote access to the mobile phone 12 by a deviceadministrator. In an enterprise environment, a company may want tomaintain control over mobile phones 12 purchased by the company fortheir employees to provide consistent functionality and user interfacesacross the enterprise devices. The device administrator is responsiblefor configuration of the enterprise devices and may interact with thedevices directly through an administration application 32 installed onthe mobile phone 12. The administration application 32 interfaces withthe interface control application programming interface 36 to read andwrite permissions to control the configuration of the mobile phone 12.The administration application 32 may be provided by a third partyvendor and may pay a license fee to obtain special permission to accessthe interface control application programming interface 36.

Alternatively, the device administrator may interact with the enterprisedevices through the administration server 40. The administration server40 may interact with the mobile phone 12 through the administrationapplication 32. The device administrator may query the mobile phone 12for its current status via the administration server 40, where asnapshot of the current status may include the current settings and alist of installed applications. The snapshot of the mobile phone 12status may be stored on the administration server 40. Once the snapshotof the mobile phone 12 resides on the administration server 40, thedevice admin may make changes to the configuration settings identifiedin the snapshot and then push the changes to the mobile phone 12 withoutuser interaction. In an embodiment, the administration server may querythe mobile phone 12 periodically, for instance nightly or weekly, tokeep the stored status snapshot up to date.

The current status for the mobile phone 12 stored on the administrationserver 40 may comprise the list of installed applications. The deviceadministrator, via the administration server 40, is allowed to addapplications, remove applications, and push updates to applicationsremotely without user interaction. The user interface of the mobilephone 12 may be impacted by the updates, such as adding or removing anapplication from the home screen. Upon receiving the updates, theinterface control application programming interface 36 notifies thelauncher application 26. The launcher application 26 responds by callingthe interface control application programming interface 36 to checkpermissions, and then rebuilding the launcher screens based on theupdated configuration.

The mobile phone 12 may be configured to allow the user to have theability to install applications themselves, in addition to the deviceadministrator. In an embodiment, the administration server 40 includessupport for white lists and black lists for the mobile device 12 toensure that user installed applications do not interfere with theenterprise functionality of the device. A white list may comprise a listof applications that have been approved by the company and are thoughtnot to cause any issues when installed alongside the enterpriseapplications. When the administration server 40 receives the statussnapshot for the mobile phone 12, including the list of installedapplications, the installed applications that are on the white list areallowed to remain in the snapshot and on the mobile phone 12. A blacklist may comprise a list of applications that are not approved by thecompany and are not allowed on their enterprise devices. Theadministration server 40 checks the status snapshot for the mobile phone12, and any installed applications that are on the blacklist are removedfrom the snapshot, and a remote update is sent to the mobile phone 12 toremove the blacklisted applications.

In an embodiment, the application server 40 may also configure a uniformresource locator (URL) pointing to a private application store tosecurely deliver applications for the enterprise. The uniform resourcelocator is a reference to an Internet resource, and may point to thecompany's enterprise network or a hosting facility to provide a list ofapplications in the private store. The user can select applications fromthe list of applications to download and install on the mobile phone 12.

In an embodiment, the mobile phone 12 may come configured with standardapplications installed as part of the operating system which are notable to be removed by the user, such as a mail program, an applicationstore, and an Internet browser. The device administrator may be able toremotely disable these applications via the applications server 40 toprovide the enterprise more control over the mobile phone 12. Disablingthe applications does not remove them, but from the system and userperspective the applications are not installed.

Turning now to FIG. 2, a method 100 of policy management and control ona mobile phone 12 is described. At block 102, a user interface changerequest is received by a launcher application 26 executing on the mobilephone 12. The launcher application 26 is the application that constructsthe home screen and presents it to the user of the mobile phone 12. Thechange request may be in response to the user interacting with a touchscreen of the mobile phone 12 or accessing a menu on the mobile phone 12to attempt to alter the appearance of the home screen. At block 104, thelauncher application 26 requests permissions from an interface controlapplication programming interface 36. The permissions define which userinterface changes are allowed and are used to control the look andfunctionality of the home screen on the mobile device 12. At block 106,the launcher application 26 receives a response from the interfacecontrol application programming interface 36, where the responseindicates if the user interface change is permitted. The interfacecontrol application programming interface 36 replies to the permissionscheck with a true or false indication notifying the launcher application26 whether to allow the user interface change. At block 108, thelauncher application enforces the received permission, where enforcingthe received permission comprises executing the user interface changerequest when the user interface change is permitted, and where enforcingthe received permission comprises not executing the user interfacechange request and presenting a message to a user of the mobile phone 12when the user interface change is restricted. In one implementation, ifthe launcher application 26 receives a response of false, this indicatesthe user interface change requested is not disabled, and the launcherapplication 26 executes to complete the user interface change. Aresponse of true indicates the user interface change requested isdisabled, and the launcher application 26 does not execute the userinterface change and instead presents a message to the user of themobile phone 12 to inform the user that the user interface changeattempted is not allowed. The true/false logic could be implementeddifferently in other embodiments.

In an embodiment, the user interface change comprises one of adding,deleting, or rearranging user interface elements, where user interfaceelements comprise shortcuts, widgets, and folders. User interfaceelements are the individual components displayed on the screen togetherto make up the user interface. A shortcut is a link to an application,where clicking on the shortcut executes the application. A widget is asmall, dynamic application that provides a graphical element which maydisplay live data, such as the current time or temperature. A folder isa reference to a grouping of other elements or to a location on the filesystem of the mobile phone 12. These user interface elements can beadded, deleted, or rearranged on the screen to change the appearance andfunctionality of the mobile phone 12.

In an embodiment, the user interface comprises one or more panels, wherea panel comprises a plurality of cells. The home screen is an example ofa panel, being the primary screen visible when the mobile phone 12 isturned on. The user interface will comprise at least the one panel ofthe home screen, but may also comprise additional panels, typicallyaccessed by swiping across the touch screen from one side to the other.Each panel may comprise user interface elements to present a unique lookand functionality when the panel is active. Each panel is divided intorows and columns of cells. For example, a panel may be made up ofsixteen cells, four rows of cells down by four columns of cells across.

In an embodiment, the permissions are based on one of a panel locationor a cell location on the user interface. The user interface elementsmay be defined by location on the mobile phone 12, with the locationspecified by a panel number and a cell number. For example, a widget fordisplaying the time may be located on panel 1 at cell 2. When the userof the mobile phone 12 attempts to move the widget, the launcherapplication 26 checks with the interface control application programminginterface 36 for the permissions for that location. In an embodiment,the permissions are based on a user interface element. In this case, thepermissions are tied to the element itself rather than the location ofthe element. When the user of the mobile phone 12 attempts to move theelement, the launcher application 26 checks with the interface controlapplication programming interface 36 for the permissions for that userinterface element instead of checking permissions for the location ofthe element.

In an embodiment, the user interface elements occupy one or more cellson the panel. User interface elements may vary in size based on the typeof element and the functionality of the element. For example, a shortcutor folder may occupy a single cell on the panel, as they are static andall that needs to be displayed is an icon and a name for the element. Awidget may occupy multiple cells or even the whole panel based on theamount of information the widget is providing or the desired visibilityof the information. In an embodiment, rearranging the user interfaceelements comprises moving the user interface element to another panel.In addition to moving the user interface element to another location onthe same panel, the user interface element may also be moved betweenpanels. This allows user interface elements to be freely moved aroundwithout being locked to the panel where they were originally installed.

In an embodiment, the method 100 further comprises pushing initialpermissions and updates to permissions to the launcher application 26from the interface control application programming interface 36. Pushingthe permissions to the launcher application 26 would allow the launcherapplication 26 to more quickly respond to user interface changerequests. The launcher application 26 would not need to check with theinterface control application programming interface 36 for permissionsas it would have them stored internally.

Turning now to FIG. 3, a method 200 of policy management and control ona mobile phone is described. At block 202, a settings change request isreceived by a settings application 28 executing on the mobile phone 12.The settings application 28 is used to configure global system levelpreferences. The settings change request may be in response to the userexecuting the settings application 28 and attempting to make aconfiguration change to the mobile phone 12. At block 204, the settingsapplication 28 requests permissions from an interface controlapplication programming interface 36. The permissions define whichsettings changes are allowed and are used to control the configurationof the mobile phone 12. At block 206, the settings application 28receives a response from the interface control application programminginterface 36, where the response indicates if the settings change ispermitted. The interface control application programming interface 36replies to the permissions check with a true or false indicationnotifying the settings application 28 whether to allow the configurationchange. At block 208, the settings application 28 enforces the receivedpermission, where enforcing the received permission comprises executingthe settings change request when the settings change is permitted, andwhere enforcing the received permission comprises not executing thesettings change request and presenting a message to a user of the mobilephone 12 when the settings change is restricted.

In an embodiment, the settings change comprises selecting an item in thesettings application 28 such as a list, checkbox, or dropdown. Thesettings application 28 may provide a plurality of types of userinterface selections for different configuration screens. One settingmay provide a list of choices to select, while another setting mayprovide a checkbox to toggle the setting on and off, and a third settingmay provide a dropdown menu for selection. The settings applicationrecognizes the selection of the configuration change from each of thedifferent user interface types.

In an embodiment, the method 200 further comprises a deviceadministrator remotely accessing the interface control applicationprogramming interface 36 to configure the mobile phone settings. In anenterprise environment the device administrator may be responsible forthe configuration and control of company owned devices. The deviceadministrator may want to configure the mobile phone 12 remotely insteadof having the user configure settings. Providing remote access to thepermissions via the interface control application programming interface36 allows the device administrator to configure the mobile phone 12settings without user interaction.

In an embodiment, remotely accessing the interface control applicationprogramming interface 36 comprises interfacing with an applicationrunning on the mobile phone 12 with permission to access the interfacecontrol application programming interface 36. Opening up remote accessto the interface control application programming interface 36 mayintroduce security concerns. Executing an application on the mobilephone 12 with access rights to the interface control applicationprogramming interface 36 may prevent a security attack from a remotelocation affecting the configuration of the mobile phone 12. The deviceadministrator may access the mobile phone 12 settings through theapplication running on the mobile phone 12, with the applicationproviding an authentication layer before allowing access to theinterface control application programming interface 36.

In an embodiment, method 200 further comprises the device administratorquerying the mobile phone 12 for a current status, wherein the currentstatus comprises the current settings and installed applications. Toefficiently manage the settings of the mobile phone 12, the deviceadministrator may query the mobile phone 12 for the currentconfiguration settings, as well as a listing of installed applications.

In an embodiment, the method 200 further comprises the deviceadministrator pushing application updates or removing applications basedon the current status of the mobile phone 12. The device administratormay make decisions based on the current status of the mobile phone 12and make changes to the current settings or installed applications.These changes can then be pushed to the mobile phone 12 and may be inthe form of updates to applications or commands to uninstallapplications from the mobile phone 12.

In an embodiment, the method 200 further comprises configuring a whitelist for applications, where an installed application on the white listis approved, and wherein the application remains installed if it isapproved. Decisions on changes to the installed applications on themobile device 12 may be made by comparing the list of installedapplications to a white list containing applications approved by thecompany for use on enterprise devices. If the installed application ison the white list, the application is left on the mobile phone 12. In anembodiment, the method 200 further comprises configuring a black listfor applications, wherein an installed application on the black list isnot approved, and wherein the application is deleted if it is notapproved. The list of installed applications may also be comparedagainst a black list of applications which are not approved by thecompany for use on enterprise devices. If the installed application ison the black list, the device administrator may push a command to themobile phone 12 to uninstall and remove the application.

Turning now to FIG. 4, a method 300 of policy management and control ona mobile phone is described. At block 302, an interface and applicationspack change request is received by an interface and applications packinstaller application 30 executing on the mobile phone 12. The interfaceand applications pack installer application 30 is the application whichinstalls, removes, and switches between interface and applications packsbased on user requests. The interface and applications pack changerequest may be in response to the user interacting with a touch screenof the mobile phone 12 or accessing a menu on the mobile phone 12 toattempt to alter the appearance of the interface and applications pack,to change the content of the interface and applications pack, or toremove the interface and applications pack. At block 304, the interfaceand applications pack installer application 30 requests permissions froman interface control application programming interface 36. Thepermissions define which interface and applications pack changes areallowed on the mobile device 12.

At block 306, the interface and applications pack installer application30 receives a response from the interface control applicationprogramming interface 36, where the response indicates if the interfaceand applications pack change is permitted. The interface controlapplication programming interface 36 replies to the permissions checkwith a true or false indication notifying the interface and applicationspack installer application 30 whether to allow the interface andapplications pack change. At block 308, the interface and applicationspack installer application 30 enforces the received permission, whereenforcing the received permission comprises executing the interface andapplications pack change request when the interface and applicationspack change is permitted, and where enforcing the received permissioncomprises not executing the interface and applications pack changerequest and presenting a message to a user of the mobile phone 12 whenthe interface and applications pack change is restricted.

In an embodiment, the mobile phone 12 comprises a plurality of interfaceand applications packs, and the permissions are defined separately foreach interface and applications pack. Different interface andapplications packs may want to limit changes to varying degrees. Forexample, a corporation may want to provide a single, cohesive experienceto users of their interface and applications pack and may restrict usersfrom making changes. Alternatively, a sports web site may encourage theuser to customize their interface and applications pack with theirfavorite team, presenting different statistics, wallpapers, and videosto users based on the user changing the interface and applications packconfiguration.

In an embodiment, the method 300 further comprises the interface andapplications pack owner defining the permissions for the interface andapplications pack. The interface and applications pack owner may beusing the interface and applications pack to promote business interestsand may therefore want to control the experience presented to the user.This control may be achieved by restricting the changes allowed bypermissions installed on the mobile phone 12 and accessed by theinterface and applications pack installer application 30 when a userattempts to make a change to the interface and applications pack.

In an embodiment, the permissions for the interface and applicationspack are configured when the interface and applications pack isinstalled on the mobile phone 12. As part of the installation processfor the interface and applications pack, the corresponding permissionsare configured on the mobile phone 12. This allows the desired controlof the interface and applications pack to be in place as soon as theinstallation is complete. In an embodiment, the permissions for theinterface and applications pack are updated periodically. Thepermissions for the interface and applications pack may be maintained ona server and pushed to the mobile phone 12 whenever a change to thepermissions is made. This may enable more flexibility by allowingupdates to permission settings on devices which already have theinterface and applications pack installed.

FIG. 5 depicts the mobile device 12, which is operable for implementingaspects of the present disclosure, but the present disclosure should notbe limited to these implementations. Though illustrated as a mobilephone, the mobile device 12 may take various forms including a wirelesshandset, a pager, a personal digital assistant (PDA), a gaming device,or a media player. The mobile device 12 includes a display 402 and atouch-sensitive surface and/or keys 404 for input by a user. The mobiledevice 12 may present options for the user to select, controls for theuser to actuate, and/or cursors or other indicators for the user todirect. The mobile device 12 may further accept data entry from theuser, including numbers to dial or various parameter values forconfiguring the operation of the handset. The mobile device 12 mayfurther execute one or more software or firmware applications inresponse to user commands. These applications may configure the mobiledevice 12 to perform various customized functions in response to userinteraction. Additionally, the mobile device 12 may be programmed and/orconfigured over-the-air, for example from a wireless base station, awireless access point, or a peer mobile device 12. The mobile device 12may execute a web browser application which enables the display 402 toshow a web page. The web page may be obtained via wirelesscommunications with a base transceiver station, a wireless networkaccess node, a peer mobile device 12 or any other wireless communicationnetwork or system.

FIG. 6 shows a block diagram of the mobile device 12. While a variety ofknown components of handsets are depicted, in an embodiment a subset ofthe listed components and/or additional components not listed may beincluded in the mobile device 12. The mobile device 12 includes adigital signal processor (DSP) 502 and a memory 504. As shown, themobile device 12 may further include an antenna and front end unit 506,a radio frequency (RF) transceiver 508, a baseband processing unit 510,a microphone 512, an earpiece speaker 514, a headset port 516, aninput/output interface 518, a removable memory card 520, a universalserial bus (USB) port 522, an infrared port 524, a vibrator 526, akeypad 528, a touch screen liquid crystal display (LCD) with a touchsensitive surface 530, a touch screen/LCD controller 534, a camera 536,a camera controller 536, and a global positioning system (GPS) receiver538. In an embodiment, the mobile device 12 may include another kind ofdisplay that does not provide a touch sensitive screen. In anembodiment, the DSP 502 may communicate directly with the memory 504without passing through the input/output interface 518. Additionally, inan embodiment, the mobile device 12 may comprise other peripheraldevices that provide other functionality.

The DSP 502 or some other form of controller or central processing unitoperates to control the various components of the mobile device 12 inaccordance with embedded software or firmware stored in memory 504 orstored in memory contained within the DSP 502 itself. In addition to theembedded software or firmware, the DSP 502 may execute otherapplications stored in the memory 504 or made available via informationcarrier media such as portable data storage media like the removablememory card 520 or via wired or wireless network communications. Theapplication software may comprise a compiled set of machine-readableinstructions that configure the DSP 502 to provide the desiredfunctionality, or the application software may be high-level softwareinstructions to be processed by an interpreter or compiler to indirectlyconfigure the DSP 502.

The DSP 502 may communicate with a wireless network via the analogbaseband processing unit 510. In some embodiments, the communication mayprovide Internet connectivity, enabling a user to gain access to contenton the Internet and to send and receive e-mail or text messages. Theinput/output interface 518 interconnects the DSP 502 and variousmemories and interfaces. The memory 504 and the removable memory card520 may provide software and data to configure the operation of the DSP502. Among the interfaces may be the USB port 522 and the infrared port524. The USB port 522 may enable the mobile device 12 to function as aperipheral device to exchange information with a personal computer orother computer system. The infrared port 524 and other optional portssuch as a Bluetooth® interface or an IEEE 802.11 compliant wirelessinterface may enable the mobile device 12 to communicate wirelessly withother nearby handsets and/or wireless base stations.

The keypad 528 couples to the DSP 502 via the interface 518 to provideone mechanism for the user to make selections, enter information, andotherwise provide input to the mobile device 12. Another input mechanismmay be the touch screen LCD 530, which may also display text and/orgraphics to the user. The touch screen LCD controller 534 couples theDSP 502 to the touch screen LCD 530. The GPS receiver 538 is coupled tothe DSP 502 to decode global positioning system signals, therebyenabling the mobile device 12 to determine its position.

FIG. 7A illustrates a software environment 602 that may be implementedby the DSP 502. The DSP 502 executes operating system software 604 thatprovides a platform from which the rest of the software operates. Theoperating system software 604 may provide a variety of drivers for thehandset hardware with standardized interfaces that are accessible toapplication software. The operating system software 604 may be coupledto and interact with application management services (AMS) 606 thattransfer control between applications running on the mobile device 12.Also shown in FIG. 7A are a web browser application 608, a media playerapplication 610, and JAVA applets 612. The web browser application 608may be executed by the mobile device 12 to browse content and/or theInternet, for example when the mobile device 12 is coupled to a networkvia a wireless link. The web browser application 608 may permit a userto enter information into forms and select links to retrieve and viewweb pages. The media player application 610 may be executed by themobile device 12 to play audio or audiovisual media. The JAVA applets612 may be executed by the mobile device 12 to provide a variety offunctionality including games, utilities, and other functionality.

FIG. 7B illustrates an alternative software environment 620 that may beimplemented by the DSP 502. The DSP 502 executes operating systemsoftware 628 and an execution runtime 630. The DSP 502 executesapplications 622 that may execute in the execution runtime 630 and mayrely upon services provided by the application framework 624.Applications 622 and the application framework 624 may rely uponfunctionality provided via the libraries 626.

FIG. 8 illustrates a computer system 380 suitable for implementing oneor more embodiments disclosed herein. The computer system 380 includes aprocessor 382 (which may be referred to as a central processor unit orCPU) that is in communication with memory devices including secondarystorage 384, read only memory (ROM) 386, random access memory (RAM) 388,input/output (I/O) devices 390, and network connectivity devices 392.The processor 382 may be implemented as one or more CPU chips.

It is understood that by programming and/or loading executableinstructions onto the computer system 380, at least one of the CPU 382,the RAM 388, and the ROM 386 are changed, transforming the computersystem 380 in part into a particular machine or apparatus having thenovel functionality taught by the present disclosure. It is fundamentalto the electrical engineering and software engineering arts thatfunctionality that can be implemented by loading executable softwareinto a computer can be converted to a hardware implementation by wellknown design rules. Decisions between implementing a concept in softwareversus hardware typically hinge on considerations of stability of thedesign and numbers of units to be produced rather than any issuesinvolved in translating from the software domain to the hardware domain.Generally, a design that is still subject to frequent change may bepreferred to be implemented in software, because re-spinning a hardwareimplementation is more expensive than re-spinning a software design.Generally, a design that is stable that will be produced in large volumemay be preferred to be implemented in hardware, for example in anapplication specific integrated circuit (ASIC), because for largeproduction runs the hardware implementation may be less expensive thanthe software implementation. Often a design may be developed and testedin a software form and later transformed, by well known design rules, toan equivalent hardware implementation in an application specificintegrated circuit that hardwires the instructions of the software. Inthe same manner as a machine controlled by a new ASIC is a particularmachine or apparatus, likewise a computer that has been programmedand/or loaded with executable instructions may be viewed as a particularmachine or apparatus.

The secondary storage 384 is typically comprised of one or more diskdrives or tape drives and is used for non-volatile storage of data andas an over-flow data storage device if RAM 388 is not large enough tohold all working data. Secondary storage 384 may be used to storeprograms which are loaded into RAM 388 when such programs are selectedfor execution. The ROM 386 is used to store instructions and perhapsdata which are read during program execution. ROM 386 is a non-volatilememory device which typically has a small memory capacity relative tothe larger memory capacity of secondary storage 384. The RAM 388 is usedto store volatile data and perhaps to store instructions. Access to bothROM 386 and RAM 388 is typically faster than to secondary storage 384.The secondary storage 384, the RAM 388, and/or the ROM 386 may bereferred to in some contexts as computer readable storage media and/ornon-transitory computer readable media.

I/O devices 390 may include printers, video monitors, liquid crystaldisplays (LCDs), touch screen displays, keyboards, keypads, switches,dials, mice, track balls, voice recognizers, card readers, paper tapereaders, or other well-known input devices.

The network connectivity devices 392 may take the form of modems, modembanks, Ethernet cards, universal serial bus (USB) interface cards,serial interfaces, token ring cards, fiber distributed data interface(FDDI) cards, wireless local area network (WLAN) cards, radiotransceiver cards such as code division multiple access (CDMA), globalsystem for mobile communications (GSM), long-term evolution (LTE),worldwide interoperability for microwave access (WiMAX), and/or otherair interface protocol radio transceiver cards, and other well-knownnetwork devices. These network connectivity devices 392 may enable theprocessor 382 to communicate with the Internet or one or more intranets.With such a network connection, it is contemplated that the processor382 might receive information from the network, or might outputinformation to the network in the course of performing theabove-described method steps. Such information, which is oftenrepresented as a sequence of instructions to be executed using processor382, may be received from and outputted to the network, for example, inthe form of a computer data signal embodied in a carrier wave.

Such information, which may include data or instructions to be executedusing processor 382 for example, may be received from and outputted tothe network, for example, in the form of a computer data baseband signalor signal embodied in a carrier wave. The baseband signal or signalembedded in the carrier wave, or other types of signals currently usedor hereafter developed, may be generated according to several methodswell known to one skilled in the art. The baseband signal and/or signalembedded in the carrier wave may be referred to in some contexts as atransitory signal.

The processor 382 executes instructions, codes, computer programs,scripts which it accesses from hard disk, floppy disk, optical disk(these various disk based systems may all be considered secondarystorage 384), ROM 386, RAM 388, or the network connectivity devices 392.While only one processor 382 is shown, multiple processors may bepresent. Thus, while instructions may be discussed as executed by aprocessor, the instructions may be executed simultaneously, serially, orotherwise executed by one or multiple processors. Instructions, codes,computer programs, scripts, and/or data that may be accessed from thesecondary storage 384, for example, hard drives, floppy disks, opticaldisks, and/or other device, the ROM 386, and/or the RAM 388 may bereferred to in some contexts as non-transitory instructions and/ornon-transitory information.

In an embodiment, the computer system 380 may comprise two or morecomputers in communication with each other that collaborate to perform atask. For example, but not by way of limitation, an application may bepartitioned in such a way as to permit concurrent and/or parallelprocessing of the instructions of the application. Alternatively, thedata processed by the application may be partitioned in such a way as topermit concurrent and/or parallel processing of different portions of adata set by the two or more computers. In an embodiment, virtualizationsoftware may be employed by the computer system 380 to provide thefunctionality of a number of servers that is not directly bound to thenumber of computers in the computer system 380. For example,virtualization software may provide twenty virtual servers on fourphysical computers. In an embodiment, the functionality disclosed abovemay be provided by executing the application and/or applications in acloud computing environment. Cloud computing may comprise providingcomputing services via a network connection using dynamically scalablecomputing resources. Cloud computing may be supported, at least in part,by virtualization software. A cloud computing environment may beestablished by an enterprise and/or may be hired on an as-needed basisfrom a third party provider. Some cloud computing environments maycomprise cloud computing resources owned and operated by the enterpriseas well as cloud computing resources hired and/or leased from a thirdparty provider.

In an embodiment, some or all of the functionality disclosed above maybe provided as a computer program product. The computer program productmay comprise one or more computer readable storage medium havingcomputer usable program code embodied therein to implement thefunctionality disclosed above. The computer program product may comprisedata structures, executable instructions, and other computer usableprogram code. The computer program product may be embodied in removablecomputer storage media and/or non-removable computer storage media. Theremovable computer readable storage medium may comprise, withoutlimitation, a paper tape, a magnetic tape, magnetic disk, an opticaldisk, a solid state memory chip, for example analog magnetic tape,compact disk read only memory (CD-ROM) disks, floppy disks, jump drives,digital cards, multimedia cards, and others. The computer programproduct may be suitable for loading, by the computer system 380, atleast portions of the contents of the computer program product to thesecondary storage 384, to the ROM 386, to the RAM 388, and/or to othernon-volatile memory and volatile memory of the computer system 380. Theprocessor 382 may process the executable instructions and/or datastructures in part by directly accessing the computer program product,for example by reading from a CD-ROM disk inserted into a disk driveperipheral of the computer system 380. Alternatively, the processor 382may process the executable instructions and/or data structures byremotely accessing the computer program product, for example bydownloading the executable instructions and/or data structures from aremote server through the network connectivity devices 392. The computerprogram product may comprise instructions that promote the loadingand/or copying of data, data structures, files, and/or executableinstructions to the secondary storage 384, to the ROM 386, to the RAM388, and/or to other non-volatile memory and volatile memory of thecomputer system 380.

In some contexts, the secondary storage 384, the ROM 386, and the RAM388 may be referred to as a non-transitory computer readable medium or acomputer readable storage media. A dynamic RAM embodiment of the RAM388, likewise, may be referred to as a non-transitory computer readablemedium in that while the dynamic RAM receives electrical power and isoperated in accordance with its design, for example during a period oftime during which the computer 380 is turned on and operational, thedynamic RAM stores information that is written to it. Similarly, theprocessor 382 may comprise an internal RAM, an internal ROM, a cachememory, and/or other internal non-transitory storage blocks, sections,or components that may be referred to in some contexts as non-transitorycomputer readable media or computer readable storage media.

While several embodiments have been provided in the present disclosure,it should be understood that the disclosed systems and methods may beembodied in many other specific forms without departing from the spiritor scope of the present disclosure. The present examples are to beconsidered as illustrative and not restrictive, and the intention is notto be limited to the details given herein. For example, the variouselements or components may be combined or integrated in another systemor certain features may be omitted or not implemented.

Also, techniques, systems, subsystems, and methods described andillustrated in the various embodiments as discrete or separate may becombined or integrated with other systems, modules, techniques, ormethods without departing from the scope of the present disclosure.Other items shown or discussed as directly coupled or communicating witheach other may be indirectly coupled or communicating through someinterface, device, or intermediate component, whether electrically,mechanically, or otherwise. Other examples of changes, substitutions,and alterations are ascertainable by one skilled in the art and could bemade without departing from the spirit and scope disclosed herein.

What is claimed is:
 1. A method of policy management and control on amobile phone, comprising: receiving a settings change request to changeat least one setting of a plurality of settings of the mobile phone by asettings application executing on the mobile phone; requesting settingschange permissions from an interface control application programminginterface (API) by the settings application; receiving a responseincluding the settings change permissions from the interface controlapplication programming interface by the settings application, whereinthe response indicates if the settings change is permitted and theresponse is based at least in part on a context of the settings changerequest including whether the settings change request is made duringworking hours or non-working hours; enforcing the received settingschange permissions by the settings application, wherein enforcing thereceived settings change permissions comprises executing the settingschange request when the settings change is permitted, and whereinenforcing the received permissions comprises not executing the settingschange request and presenting a message to a user of the mobile phonewhen the settings change is restricted; evaluating, by the settingsapplication, a state of the plurality of settings of the mobile phoneduring a context transition; changing, by the settings application, atleast one of the plurality of settings of the mobile phone based oncontext based permissions of an impending context; remotely accessing,by a device administrator, the interface control application programminginterface to configure one or more of the plurality of settings of themobile phone; pushing, by the device administrator, application updatesor removing applications based on a current status of the mobile phone,a white list for applications and a black list for applications;receiving an interface and applications pack change request to change aninterface and applications pack on the mobile phone by an interface andapplications pack installer application executing on the mobile phone;and receiving and enforcing interface and applications pack changepermissions from the interface control application programming interfaceby the interface and applications pack installer application, whereinthe interface and applications pack change permissions for the interfaceand applications pack are defined by an owner of the interface andapplications pack.
 2. The method of claim 1, wherein the settings changecomprises selecting an item in the settings application, and wherein theitem is a list, a checkbox, or a dropdown.
 3. The method of claim 1,wherein remotely accessing the interface control application programminginterface comprises interfacing with an application running on themobile phone with permission to access the interface control applicationprogramming interface.
 4. The method of claim 1, further comprisingquerying the mobile phone for the current status, wherein the currentstatus comprises the current settings and installed applications.
 5. Themethod of claim 1, further comprising configuring the white list forapplications, wherein an installed application on the white list isapproved, and wherein the application remains installed if it isapproved.
 6. The method of claim 1, further comprising configuring theblack list for applications, wherein an installed application on theblack list is not approved, and wherein the application is deleted if itis not approved.
 7. The method of claim 1, wherein a first set ofsettings change permissions defined by an enterprise is applicable andreferenced by the settings application during the working hours, andwhen the mobile phone is used during the non-working hours by a user, asecond set of settings change permissions defined by the enterprise isapplicable and referenced by the settings application.
 8. The method ofclaim 1, wherein the context may be based on one or more of time of day,day of week, geographical location or relative location.
 9. The methodof claim 1, wherein the settings change permissions are based at leastin part on the context and relate to one or more of mobile phoneparameters, applications, or settings.
 10. The method of claim 1,wherein the settings change permissions are based at least in part onthe context and relate to one or more of settings for cameraoperability, GPS operability, or web browser limitations.
 11. The methodof claim 1, wherein the plurality of settings based at least in part ona context at an earlier time are stored separately in the mobile phoneto support automatic restoral of the plurality of settings based atleast in part on the context of the earlier time when transitioning to anew context.
 12. The method of claim 1, wherein at some of the pluralityof settings are not subject to change based on the context.
 13. Themethod of claim 1, wherein the context is at least in part based onwhether the mobile phone is used in a company vehicle, embedded in thecompany vehicle, or removed from the company vehicle.
 14. The method ofclaim 1, further comprising: receiving a user interface change requestto change the user interface by a launcher application executing on themobile phone, wherein the change to the user interface includes one ormore of adding, deleting, or moving user interface elements, invoking asearch, or opening a settings menu; requesting user interface changepermissions from the interface control application programming interface(API) by the launcher application; receiving a response including theuser interface change permissions from the interface control applicationprogramming interface by launcher application; and enforcing thereceived user interface change permissions by the launcher application.15. The method of claim 1, further comprising requesting the interfaceand applications pack change permissions from the interface controlapplication programming interface (API) by the interface andapplications pack installer application.
 16. The method of claim 1,wherein the mobile phone comprises a plurality of interface andapplications packs, and wherein each of the plurality of interface andapplications packs is associated with corresponding interface andapplications pack change permissions that are defined separately foreach interface and applications pack.
 17. The method of claim 16,wherein the interface and applications pack change permissions for eachinterface and applications pack is initially configured when thecorresponding interface and applications pack is installed on the mobilephone.